Towards a Comprehensive Automotive Cybersecurity Reference Architecture

Schmittner, Christoph; Latzenhofer, Martin; Shaaban Magdy, Abdelkader; Bonitz, Arndt; Hofer, Markus

Home // International Journal On Advances in Security, volume 12, numbers 1 and 2, 2019 // View article

Towards a Comprehensive Automotive Cybersecurity Reference Architecture

Authors:
Christoph Schmittner
Martin Latzenhofer
Abdelkader Shaaban Magdy
Arndt Bonitz
Markus Hofer

Keywords: automotive cybersecurity; cooperative intelligent transport system; service matrix; reference architecture; risk management.

Abstract:
While interconnectivity, complexity, and software-dependency are prerequisites for automated driving, they also increase cybersecurity risks for the whole transportation system. Information and communication technology infrastructure is becoming a second layer for critical transportation infrastructure. In the ongoing Austrian research project CySiVuS, we identified stakeholders which are involved, the services offered and consumed, as well as the risks to a cooperative intelligent transport system (C-ITS) in a structured manner. We collected and categorized different use cases and developed a specific service matrix for C-ITS. Based on an adapted security risk management process we conducted an exemplary security risk management process, using threat modelling. This serves as a fundamental preliminary step towards a comprehensive automotive cybersecurity reference architecture, which is the main objective of the CySiVuS project. Only if all components in the information and communication technology (ICT) infrastructure provide their services in a sufficient quality in accordance with the required security and safety demands, society can rely on an interconnected automotive system.

Pages: 1 to 12

Publication date: June 30, 2019

Published in: journal

ISSN: 1942-2636